In this iPhone guide you will learn how to jailbreak iPhone 3GS, 3G running OS 3.2.1 using PwnageTool 3.1.4 on Mac OS X. This guide is for Mac users only because PwnageTool is available for Mac only and there’s no Windows version out there.
This Guide is for both iPhone 3GS and iPhone 3G. All steps for both models are same. The only difference is that for 3GS you need IPSW file for 3GS and in case of 3G you need IPSW for 3G to create Custom IPSW from it. Both files are linked in the guide.

IMPORTANT

If you’re still on OS 3.0 or updated to OS 3.1 using PwnageTool which means you’ve preserved you Baseband which means, along with jailbreak, you can Unlock your iPhone using UltraSn0w. On the other hand;

If you bought an iPhone with 3.1.x preinstalled or you have updated your iPhone to OS 3.1.2, you will be able to Jailbreak your iPhone only.

Jailbreak iPhone 3GS, 3G 3.1.2

Update your iTunes to latest version and Backup your iPhone.

Create a folder on your desktop and name it: Pwnage. Then download the following files and put them into Pwnage folder:

(Download through Firefox because Safari often auto extracts ipsw file) The iPhone OS 3.1.2 file is also available in All iPhone Firmwares post.

Jailbreak iPhone 3GS OS 3.1

Step 1
Double click PwnageTool_3.1.3 dmg file to mount it.

Click and drag the PwnageTool icon to Pwnage Folder you created and then open it from there.

Warning Box will Popup. Just hit the OK button.

Step 2
Make sure you select Expert Mode from Top menu

Step 3
Select your device. A big Green check mark will appear on the selected device.
Now hit the big Blue Arrow button at bottom right to proceed.

Step 4
On the next page, PwnageTool will automatically find the IPSW file. If not found then click “Browse for IPSW” button and select the downloaded IPSW file from the Pwnage folder. A check mark will appear next to it.

Then hit Blue Arrow Button to proceed.

Step 5
On the next page you will have 6 choices. Select the General and hit Blue Arrow Button to proceed.

Step 6
This is the most important step. Please read carefully about selecting activate the phone option. You will know you didn’t choose the right option if you don’t have signal after jailbreaking.

On the next Page you can decide your Root Partition Size where OS resides. Click activate the phone (only if you’re on unofficial carrier).

***Deselect Activate the phone option if you are on official carrier. For the 3.1.2 firmware you may have to increase the size of your root partition slightly for the IPSW build to be successful. may be 700MB.***

The Bootneuter settings are greyed out for the iPhone 3GS and 3G. Click the blue arrow button.

The next screen will show the Cydia settings menu. It allows you to create custom packages so you do not have to manually install them later.

Go to Download packages tab.and hit the Refresh button to display all the available packages. Double click your desired package, it will be downloaded and will be available under the Select Packages tab.

When you have downloaded your desired packages, go back to Select Packages tab and check mark the ones you want.

then hit the Blue Arrow Button to proceed.

Custom Packages Settings will displays listed package settings for your custom IPSW. Leave these settings as is for now. Just click the Blue Arrow Button to proceed.

On the next Custom Logos Settings menu, you’ll be able to add your own images as boot logos. Click the Browse button to select your Boot logo and Recovery logo. I just use defaults so deselected all options.

Click the blue arrow button to continue.

Step 7
Now you are ready to build your custom firmware. Click the build button to select it, then click the blue arrow button to proceed.

Step 8
You will be asked to Save your custom .ipsw file. Save it to the same Pwnage folder.

Step 10
When prompted if your iPhone has been Pwned before, Click No. It allows for a more thorough restore.

Step 11
You will be asked to turn OFF the device. Make sure it is connected to the USB port.

Step 12
NOTE: If you’re already jailbroken (by whatever means), you don’t need to mess around with DFU mode at all. Just create (or get from a friend) your custom IPSW and Option-Restore (Shift-Restore on Windows) to it via iTunes. Don’t enter DFU mode at all. Please make sure you are restoring to the custom IPSW, not the stock one from Apple! For best results, use the latest iTunes (9.0.1) — which includes a nice new application organizer.

If it’s the first time you’re jailbreaking your iPhone, Be ready to follow directions now to get into DFU Mode.

You will be asked to hold the home button and the power button for 10 seconds.

Then, you will have to release the power button and hold the home button for 10 seconds to enter DFU.

If you failed to follow the instruction, it will show you a message asking if you want to retry?. Click Yes.
Unplug the iPhone from the USB. Turn it OFF, then turn it back ON. Reconnect it to USB and turn OFF the iPhone when prompted.

When followed correctly, PwnageTool will display a message telling your that it successfully entered DFU mode. iTunes will also pop-up.

Step 13
In iTunes, hold the Alt/Option key and hit Restore.

Step 14
from the popup window, browse to the Pwnage Folder and select you custom .ipsw file that you just created and click Open Button.

Step 15
iTunes will now restore the firmware on your iPhone. This can also take up to 10 minutes.

From Cydia and make sure you accept the option to store your ECID SHSH on Saurik’s server. It will put you on the safe side for future jailbreak. By doing this you’ll be able to downgrade to the firmware for which you saved your ECID SHSH on Saurik’s srver.

You can check for which firmware you have saved your ECID SHSH by looking at the top of the Cydia Home screen:

Hi, I just upgraded to OS3.1.2 with iPhone 3G, after restoring to custom .ipsw, whenever I boot up it will start with a safe mode. So I tried restoring several times until I restored with custom .ipsw with out any package included. So everything is ok but just today I discovered that my camera isnt working… I mean I can take any photos but whenever Im gonna check it in camera roll, the photo I just took is not there.. I tried erasing photos but it will just come back. I erased all photos with winscp. so now its zero but still the camera wont save.. whats wrong? any ideas?

I have tried this several times with 3.1.2 and the newest baseband (5.11 something) and I only get the 1600 error. I’ve tried only restoring when in restore mode, tried in recovery mode, tried with itunes closed.

Any Ideas? I’m really tired of the whole tethering issue with Blackra1n.

thank you guys it is such a wounderful and i cannot belive this this is is crazzzzzyyyyy well done their sell cheap and we jailbreak easly but here in africa people still frightned to jailbreak the i phone now and any body need help in africa contact me emmanuel john advanced i phone 3Gs and 3G unlock and jailbreak in Arusha Tanzania phone +255-784-309-886 alot of thankxfor iphoneheat.com appreciate this

will this also work with the 2G/original iphone? I’ve been looking for the right update for a long time. This looks really good. And I’ve already downloaded pwnage 3.1.4. and the iphone update 3.1.2 . My phone is now still on 1.1.4. so it’s about time. When i went the regular way trough pwnage trough instructions on an other website it said the bootloader wasn’t found. So then i saw this on expert,do you think it will work?